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From franJcQfuncom.com Tue Nov 9 13:23-29 1999 
Date: Thu, 28 Oct 1999 12:57:37 +0200 (CEST) 
From: Frank Andrew Stevenson <frankGfuncom.com> 
To : livid-dev@li vid. on . coenpro;) ects . net 
Subject: [Livid-dev] Wording PlayerKey cracker 

In response to feedback from yesterdays post I have now refine 
my attack in the following ways: refined 



The CSSdecrypt key can r.ow be recoverd with only 5 bytes of 
known output. Sometimes multiple keys will be found t 
single output, due to emissions m the mixing stage. But 
this is not a problem wnen recovering KEKs ( Kev encrvntL 
Keys ,, as all keys found will be equivalent T^SSSSSL.. 

There has been some debate around the 'hash function'. I choos. 
inouTYh ^ * VCry 51=?le en «yP^°n function, £ith 5 by£e 
t^ftl: I ytC ° utput anc 5 byte key. When searching for a 
player key, the input / output is known. The cipher can Jh.„ k. 
attacked with a complexity of 2*8. Code for thekey reSoverv 

lL g ut Ve \ b ' lOW ' Th t S C1Fr ' er has «lissions, and some 

Thl Ltter'iri" " ***** WhilC ° the " h ™ multiple. 

The latter is a concern wnen searching for Player keys as 

they have to be elimintec by checking^gains o^er discs 
I have attached a program that works as follows: 

hippopotamus :-/tmp> time ./keyrec 22 el 67 83 72 Of cl 7a 96 9fl 
Recovering Key 1 a y6 98 

Possible mangling key: af c9 07 42 If 

Possible Player key 51 67 67 C 5 eO 

Possible Player key 65 d2 e3 92 ae 
S.OOOu 0.010s 0:05.44 92.0% + 0k 0+0io 87pf+0w 

Here 2 equivalent player <eys are recovered from the 

input: 22 el 67 83 72 - Disc key 

output: Of cl 7a 96 98 - intermediate key, common for all player keys 

now Se = 3ndS ° n 3 PPr °200, somewhat slower 

now .hat only 5 bytes are known m the keystre* 



:am. 



If this works, as I hoDe • t ui i i t t i i 

« th. „.«„ co recov H ^i. 1 ^ j£J )«™ " » - ««.ia. 
frank 



This i; 

static int unmangle ( 
unsigned char A(5J ; 
unsigned char B[5] ; 
unsigned char C[5]; 
unsigned char k (6) ; 
in: 1,3; 

/* Recover mangling 
memcpy ( A, m, 5 ) ; 
memcpy | c, out , 5 ) ; 

k [ 5 ] ■ ; 



1 hew to recover the 
unsigned char* in , 



'hashing key' 

unsigned char *out ) { 
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fort i-0 ; i < 256 ; i++ i / 
k[A] « i; 

for( j - 4 ; j >- 2 ; J— ) { 

B(j] - k[j] - CSStablf A[j] ] * AM-11- 
B(j-1] » CSStabl[ B [j] ] - k[]] * ctjj; 

^ k[j-l] » A[j-2] - CSStabl[ A[j-1] ] - B[j-1] ; 

B[0] = CSStabl[ B[l] ] - Icri] * C[l] ■ 
k[0] » B[0] * CSStablf A[0] ] * BI4J; 



if( ( CSStablf BfOJ ] - ktO] )— C[0] ) { 

*m, Em"k(3fr S M" e r n9iin9 key: %02x * 02x * 02 * %02 * %02 ^"' ndf. 



} 

) 

return 0; 



The following is the complete sourec for 
player key cracker 



b-gm 640 keyrec.c.Z 

«U>2R-KF/A6UF«M92^60 S^owsM/^xri^''^""'' ' XE:VC66N78UK 
M-) YWL>YU; 4 [ M -U01XC> 1 E- o< T - f ,,S T J ' 55KW?S : «K?3W2 Y2N20> 

MP- 'K, 825?. (CUG")A2RAD i«25-Sfii!?J ' * * V ' 8 «C)QERQ^ <-,* 
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M*G*8Z:SG%X*.HJ— t-74;«TKJXP mm >c 

M4S3I5C !B2PK2073A9#E-X\ . J„S B \£22 Q K! L: ^ 4 !VB 

MFfiHV)0%2MAB"XM2? : EH W/ .SSfvw ""^^W «: : V 31m^ 

MV»QA- : -60_E?M58SKL8HU5"--?! ?£ . i ™!! %/YPMR J W3 . R-jujwf J 
M2 [ YQ3SYSY. STI3A-N4WLGPERI4 js> * I mEES 1 38 * SI<5K /6) W: KHOG IF 
M ^5f?7C8FF2X-K,HP4A£QBl8n\H!2SZ ?f2?2^ CFmS + #MTC ' 'OU2*t«B 
M'DUS2GW5;F)%F6-9)EJGBDVJ9K ft ^f^^ BEGX "- DBJ1 ^"Df 5HL<»%4N 
M-H*?),T7MUHN!( 4 GD04:S?l<'r' 7 J n/i^ Y6 " 1Q>261 92DS ^' I# J 
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M-73-XG,;<SX[ET$YUSO ' ? m J?" 'Jg? IJlp^Sf' 4HW?M9 * 2 ?1 ' 3* J '3- 
MY3_4 ! • + ,X7 • -PGS+HW ' ~A ' ' • JmSSS Tm^lff 7+ «HTTIMQir) <7, ?2 • * 5 

MIDWE1DF] , V] ; ' 62 ' YfiWinlu . Sis ' — H2DSUT [Q] DG09DSM) DC5H6X r T r*r 

mtrw • Memoir i ™Xffi!222? ' 3UC0BUI > I ' dmmmxSS 

Wf«?O-,O0-M)0.?0(N5o2"owM 'f <»f^ 9 f D ' <8D ^ 0?A ^u 
« )> +F,2->29$GF9)1T04« 7 II ll445 <# (951* ' (4F0-; " ' -« 

ML-().ieGEO-8VO,@El>5oY^v X 9R " IPMQL ' -&D1 ' @ ">! ? i 

ML) , H ( ) $FS « , IP \3 ix Uroulr ' 42B9 - *H9HRT) OQX ?i • ^5 

" 6 ?;^ ) °Y L ' +/>9V)699G29 <^'= 5 !^i^fil^»- i#f¥, w f !w ! 5 

MT)>4 4:iE<SJG\P(J4* fIVTiw»T } XUX) L 3 ' >V0>#< : »TLI flR 

M i. 9 ^-)B@)! 4 H(] N L-89$ 'ON' f \-i «; 9 ° TT1 1ELVMAlAX *'e<-<;00-T 
8N 8*-MOHSJ@)?*05EX(]A ' -o nkk ?L J1 14 * : 09(?N@9 * 8 ' 8- , 090 

M"I@B209G"9-SD) ' SHIM' "91 I a* ? f Q " X #5K< "U009SH) D0»0) V, #MP 3M9 
MNA9EX) 4@<) F9 A 9DG . CF0^3 • ^M9BJC fil XRR ^B*PO) JO) ( StIBfi>9*^0VA2Q 

M*9>/ 4 3F8V2MNV3ER ?5 B i E <M f?i ^ 9R\0 ; <:A4>CD+L: ] NX) AGS 9< 

M"0 , T -P ( 8NJQK^Y5D2P»U (' l^M ! J*?** <' U 9*XQH*MB r i« LP > 
Mfi * R ^ X JO * 2 : L*5l«* @«, IB Rf<r GT<»6H/ : 0»YL6HM: YUWJSKR 

^^9^IjS 

M:KT89:AS.<?>82: • H^E0 l^t^ 17 ^ 1 '^^ • (HEJ2$<"BSS 
M2Z2$»<3)08<: !Z ;PT$* 0^-^ ' L>SK% ^ Y ' GG * 9A ( ' -2@ • #*BO#s 

MR\82VZYS»:^V ( n<7???: 2 ;; f^ a P< ' 3 ^ O&i <8G2<4 O- r ^ 
MOO<.: Q(i p- u 'lit* f.H^ ,$FA ' ( ' 09 I"<W:A>4Jl7<FZO "flfn.L 
M0-9V,?42BVFf^8?6CT A C^n!: 2 U f^ 

M$,$93)-A><X-*« E-»-+/B'**^..p«o?; Y J4I9u MlB[3K"rF4W*EM 
M.,H#W0 + H6LWRW,< f? -" • U>Vf<n/ f o : 1 ' " ; ~ S+7Y * ) H8 J; 0B ' *#L B^R 
MK:_8SA<0<-BR3 LVM(?M^;>f,I^; ff;? + 3ZBLS) BI^ . ? 

M-JJD:JJ H *@>j.j^.. 9B4R ^-? A1B < : (\ '•VO,DH'9:[V[OT2,CK»P->23 e 

MJ<* 73»1 A4 <A9 JH\ ; R\ E -3 ! ^ AG ?1 r 6 " 5 ( TO* [ : L (ZX09G ( , , p? ; § j V 
M^i^iWW.RQ.gvuxpi^p,:^; ] ? ^ LR>: = ERX = 72G9);«99aG,H34 2L 
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MW+,80, •W«[GL+.5BMEF«IS3Z8,5.M16 ) 4 "?<HG6<"NS , U A FI8 (B • JY>rn~ 
M412TK:5\J BOC+QUP '9(4-, U4Y3XG-AVC1 >MS<Mr'$\U • SS-/ 
M»I7RW-%DN: *G->5 ' *I-T. 0- YB9-WN9<>2KYXH- ! \@ ■ , J"xXf • ) 1? 

M*>8"$N<8B*4 ?c%4<l T Kjvvf^^? = SBI ( ' >9<+ : NAA?N@BC>AE3lT\^>YZ 

5N<8B;4 *>C%&<lLKJYV]<MMr M ;"C«D61-03H-1 -T09PY % 

M6J<28 , B/+, EVOU jo -W: 5 92L@ ' * Y0DJ2\ ) F»R>0>KSoS2 ! UWttflS 
MVN-S\ . -TD*L>B\5 BNL8T !»CKV' JMP«$9E! 3K*#FU%\B-O8+LIl<0/^RYflfi 
M4A£0XBYOXA0 NS SE< ' ' . BH-S . 9ZQ < 4 . ) "H+%E0 ! sS^OOM w"f^ J^V 
M..BEO:Q\.Q?'V2IR\,<6B2YOP'90<->*>[VG »RL) (MN-MV\ T VM»7^i . i' e 
M29 : 4 / ! 772NY ! ( < J ' : ; SR2 ] LLCVYNML3 [ J P6C"~' 1:0 ^RT»/Q7H*P07'? )n 
M>? ( :H? ( \. ?, NWU42 *0, E7 . ; : SL^K9QNzW«9 : \+S WV^NOLS o<S 

MH8] ( 2NAY, * >0? . \B21-M</ >NOKBQV [ ARX*< "4«D ! Z9" WYA(L'"l*OA\jr V" 
ML-45.WWV_?FXR_G3-P0C!?jr'SMKL-5 \ ? ! ( DO; ( " XvM-leXiJl X < 
M?)W<VP9C--»Y-)»< A Y»-6< 4-00!/ qT^BB? SHV Ai^^^ll f 
MK?E@V?K52<5:6\0K>Y) ! K+7m? ) *<kT(M0-O< • Y;VKoI IWOKP Y^Y^r ti 
M, AM* 9+Z JP8 JO- ' N+_] 0_4 EG> [ ?*YMB+TG A [ ; *DD/\ ^<38$Iof/6 «?* 
WIN !M%\3S . QMP/?W_U ! <R?) 0+ (D*IC, |» />«?UK?4»0) • 4* J- witl/lLl 

M:E)I8-Z(*>N6-AI-) -R"<;«'X44 'YR*i-DS97X *W 222 !fIJ X #( 
M@7V7I?p»p$-AWW" 1 ; UPB ' K 4 SS4- . " Q:\ f 7<i , ™ poHjf « 5 



end 



This sentence is unique in this respect; it can saf.lv 
be attributed to my employer, Funcom Oslo AS? * 
E3D2BCADBEF8C82F A5891D2B6730EA1B PGPmail Dr .f,rr.H *a 
There i, no place Uk. M59 SO.Sst EuTS VSPf^M?'" 



:^i d ;^? V m * iillSt - - vid-develi via. on . operiproiects net 
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^include <stdio.h> 
^include <string.h> 
^include <ctype.h> 
^include <stdlib.h> 



static unsigned int CHt^UlW3,fl,X ( 2,3, 4 ,fl,l,2,J,4li 
static unsigned char CSStabl [256] » 



o°x x d3 3 ; 1:11: SS: tit: S3a' 2S5 • i:*-™*- «•* o ^ ***** °* 2 >, 0x2e 0x66 

0x57, 0x17, 0x5f, 0x82 O^c^/S^ 

0xd9, 0x99, Oxdl 0x00 o3» SSf'oS f ' S X i^ J X f !' 0xU ' 0x52 ' Oxc. Sal' S«f 
2*3*<Ox7d,Ox3 5 :oK 

Oxdd, 0x9d, 0xd5, 0x04, 0x4d, OxOd SIS oSJ'£2f ' £2'* 0x34 ' 0x25 ' 0x6c, 0x2c, 0x64 
0x59, 0x19, 0x51, 0x80, 0xc9 0x89 0^7' n ?i ' S ?f ' ° X9c ' 0xd4 ' 0x05 ' °x4c, OxOc 0x44 

oxd7,ox97 /0 xdf,oxo! ?; 5*5?; S«S?; S*«* SSS- 222f - 2 x i 8 - 2* so - ©iSS; S^oS 

0x53, 0x13, 0x5b, 0x86, 0xc3 0x83 Oxeh' Sia'X ° Xd2 ' 0x0f ' 0x <*< 0x0a 0x42 

0xb3, Oxf 3, Oxbb, 0xa6 0xe3 Ox! 3' Sx2' oSf ' n Xle ' ° x56 ' 0x8b ' 0x <=« Oxsl 0x3 

0x37, 0x77, 0x3f , 0x22 0x67 0x1% OxTt 0x72 ESl'X?' fK' ° X * b ' ° XM ' 0x " 23 

0xb9, Oxf 9, Oxbl, QxaO, 0xe9 OxU n*.f ' n in' S w*' X? *' 0xl2 ' 0x2£ ' °x6a, 0x2a 0x62 

o*3d.oxid,ox55 ox!; ? SiS' S«"' SSi- 2 x f 8 - 2*? °- 0xal ' «2S: SiJs 
S^S; Sl^' oS2: S^i; S^S; SS- X:: 



] ; 

static unsigned char CSStab2[256] 



°*2«. 0x25, 0x26, 0x27, 0x20 0x21 Ox«'^ 

0x36, 0x37, 0x34, 0x35,0x32 S3^o3^o!S^S^^ C 'K f ' M# •«••«••olSb 
0x49, 0x48, 0x4b, 0x4a, 0x4d 0x4c 0»4f £2'2 A* ° X3d ' ° x3c ' 0x3b ' 0x39 

0x5b, 0x5a, 0x59, 0x58 OxSf OxSY Oxld £22' £ ^ 1' ° X42 ' 0x4 3, 0x44, 0x45 0x46 
0x6d .0x6c.0x6f.0x6. 0x6^ o M.' 2*22' Sj^ # SSJ' SSI # 2"22' * 51 ' °* 56 ' °« 57 ' ^S? 
0x7f , 0x7e, 0x7d, 0x7c, 0x7b, Ox7 a 0x79 £S'2S1' S"S' ° X66 ' 0x67 ' 0x60 ' 0*«, 0x62 
0x92,0x93.0x90,0x91 0x96 SfJlSS'fiw S2'£2'^^ 
°*80,0x81, 0x82, 0x81. 0x84, 0x85 S3 fi^Sif'^'SS'S^^^ ^ 
0xb6, 0xb7, 0xb4, 0xb5, 0xb2, 0xD3, OxbO o2l dSJ'SS 'J"I5' ° X8a ' ° x8d ' 0x8c ' 0x8f 
0xa4, 0xa5, 0xa6, 0xa7, OxaO Oxal oSJ'SSi'J J'S***' ° Xbd ' ° Xbc ' 0xbb ' °**>», 0xb9 
Oxdb, Oxda, 0xd9, Oxd8 Oxdf Oxde oJdd'oSf '222?' n"!?' ° Xdf ' ° Xae ' 0x * 9 ' 0xa8 Oxlb 
0xc9, Oxc8, Oxcb, Oxca Oxcd Oxcc' Oxcf ' £22' o n' n^?' ° Xd °' ° Xd1 ' 0xd6 ' 0xd7 Ox" 
Oxf £ , Oxfe, 0xfd> Qxf Qx Oxcc Oxcf, Oxce, J^O, Oxcl. 0xc2, 0xc3, 0xc4, Oxc5 0xc6 

Oxed, Oxec, Oxef , Oxee, 0xe9, Oxe8 , Ox*£ ££ JS* 8K Sft ^ £g; ££ 



:atic unsigned char CSStab3 [ 512 J = 



0x00, 0x24, 0x49, 0x6d 0x92 Oxbl' £S' £S' S^n' n X ? 4 ' ° X49 ' 0x6d ' 0x92 ' °xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d 0x92 0x3' £2b'£S' " ' J*? 4 ' ° X4 9 ' 0x6d ' 0x92, 0xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d 0x92 S3 ' S' 2*22' ° X24 ' 0x49 ' 0x6d ' °**2, 0xb6 Oxdb 

0x00, 0x24, 0x49 Ox6d 0x92 0x3' £££' £25* 2*22' ° X24 ' ° X49 ' 0x6d ' °* 92 °xb6 0xdb 
0x00, 0x24, 0x49, Ox6d 0x92 ' 0x3' £££' £25' " ' ° X24 ' ° X49 ' 0x6d ' 0x92 , 0xb6 Oxdb 
0x00, 0x24 , 0x49, Ox6d 0x92,' OxVt ' Sxdb' ££' £22' n*?' ' ° X49 ' ° X6d ' ° x92 ' 0xb « Oxdb 
0x00, 0x24, 0x49, Oxod, 0x92 0x3' Oxdb' S' °, x24 ' 0x49 ' 0x92, 0xb6 Oxdb 

0x00, 0x24, 0x49, Oxod, 0xS2 0x3' X d^0 X f^S X ^^n 0X ^ 

0x00, 0x24, 0x49, 0x6d, 0x92 0x3 x^ ' oJf' n *nn'° n *V' ° X49 ' ° x6d ' 0x92 ' 0xb *' Oxdb 
0x00, 0x24, 0x49, 0xcc 0x9 0xb6 2S'^^£J^S K ! 4 ' °* 49 ' °*^'»« 
0x00, 0x24, 0x49, 0x6d, 0x92 0x3' ^db' SS' n^n' n^ 4 ' ° X49 ' ° x6d ' °^2, 0xb6, Oxdb 

uxbc, „xdb, Oxf f , 0x00, 0x24 , 0x49, 0x6d, 0x92, 0xb6, Oxdb 
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0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff , 0x00, 0x24, 0x49, 0x6d, 0x92 0xb6 Oxdb 
0x00, 0x24, 0x4 9, 0x6d, 0x92, Oxb6, Oxdb, Oxff, 0x00, 0x24, 0x49, Ox6d, 0x92^ Oxb6' Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff , 0x00, 0x24, 0x49, Ox6d, 0x92 0xb6' Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, Oxbe' Oxdb 
0x00, 0x24, 0x4 9, 0x6d, 0x92, Oxb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, Oxbe' Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, Oxb6, Oxdb, Oxff, 0x00, 0x24, 0x49, Ox6d, 0x92, 0xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, Ox6d, 0x92, Oxb6 Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, Oxb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, Cx6d, 0x92, Oxb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, Oxbo, Oxdb, Oxff, 0x00, 0x24 , 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92 , 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, 0xb6 Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92 , 0xb6 , Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, Oxb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92 , 0xb6, Oxdb, Oxff, 0x00, 0x24, 0x49, 0x6d, 0x92, Oxb6, Oxdb 
0x00, 0x24, 0x49, 0x6d, 0x92 , 0xb6 , Oxdb, Oxff, 0x00, 0x24 , 0x49, Ox6d, 0x92, 0xb6, Oxdb 



static unsigned char CSStab4 [256] * 

( 

0x00, 0x80, 0x40, CxcO, 0x20, OxaO, 0x60, OxeO, 0x10, 0x90, 0x50, OxdO, 0x30, OxbO, 0x70 
0x08, 0x8 8, 0x4 8, 2xc8 , 0x28 , Oxa8 , 0x68 , Oxe8 , 0x18 , 0x98 , 0x58 , 0xd8 , 0x38 , Oxb8, 0x78 

0x04, 0x84, 0x4 4, Cxc4, 0x24, 0xa4, 0x64, 0xe4, 0x14, 0x94, 0x54, Oxd4, 0x34, 0xb4, 0x74 
OxOc, 0x8c, 0x4c, Oxcc, 0x2c, Oxac, 0x6c, Oxec, Oxlc, 0x9c, 0x5c, Oxdc, 0x3c, Oxbc, 0x7c 
0x02, 0x82, 0x42, 0xc2, 0x22, 0xa2, 0x62, 0xe2, 0x12, 0x92, 0x52, 0xd2, 0x32, 0xb2, 0x72 
OxOa, 0x8a, 0x4a, Oxca, 0x2a, Oxaa, 0x6a, Oxea, Oxla, 0x9a, 0x5a, Oxda, 0x3a, Oxba, 0x7a 
0x06, 0x86, 0x46, 0xc6, 0x26, 0xa6, 0x66, 0xe6, 0x16, 0x96, 0x56, 0xd6, 0x36, 0xb6, 0x76 
OxOe, Ox8e, 0x4e, Oxce, 0x2e, Oxae, Ox6e, Oxee, Oxle, 0x9e, 0x5e, Oxde, 0x3e, Oxbe, 0x7e 
0x01, 0x81, 0x41, Oxcl, 0x21, Oxal, 0x61, Oxel, Oxll, 0x91, 0x51, Oxdl, 0x31, Oxbl, 0x71 
0x09,0x89, 0x49, 0xc9, 0x29, 0xa9, 0x69, 0xe9, 0x19, 0x99, 0x59, 0xd9, 0x39, Oxb9, 0x79 
0x05, 0x85, 0x45, 0xc5, 0x25, 0xa5, 0x65, 0xe5, 0x15, 0x95, 0x55, 0xd5, 0x35, Oxb5, 0x75 
OxOd, Ox8d, 0x4d, Oxcd, 0x2d, Oxad, 0x6d, Oxed, Oxld, 0x9d, 0x5d, Oxdd, 0x3d, Oxbd, 0x7d 
0x03, 0x83, 0x43, 0xc3, 0x23, 0xa3, 0x63, 0xe3, 0x13, 0x93, 0x53, 0xd3, 0x33, 0xb3, 0x73 
OxOb, 0x8b, 0x4b, Cxcb, 0x2b, Oxab, 0x6b, Oxeb, Oxlb, 0x9b, 0x5b, Oxdb, 0x3b, Oxbb, 0x7b 
0x07, 0x87, 0x47, Oxc7, 0x27, Oxa7, 0x67, 0xe7, 0x17, 0x97, 0x57, 0xd7, 0x37, 0xb7, 0x77 
OxOf , 0x8 f, 0x4 f, Oxcf , 0x2 f , Oxaf , Ox6f , Oxef , Oxlf , 0x9f , 0x5f , Oxdf , 0x3f , Oxbf , 0x7f 



static unsigned char CSStabS [256] = 

{ 

Oxff, 0x7 f, Oxbf, 0x3f , Oxdf, Ox5f , 0x9f, Oxlf , Oxef , 0x6f , Oxaf, 0x2f , Oxcf, 0x4f , 0x8f 
0xf7, 0x77, Oxb7, 0x37, 0xd7 , 0x57 , 0x97 , 0x17 , 0xe7 , 0x67 , 0xa7 , 0x27 , 0xc7 , 0x47 , 0x87 
Oxfb, 0x7b, Oxbb, 0x3b, Oxdb, 0x5b, 0x9b, Oxlb, Oxeb, 0x6b, Oxab, 0x2b, Oxcb, 0x4b, 0x8b 
Oxf3, 0x73, Oxb3, 0x33, 0xd3, 0x53, 0x93, 0x13, 0xe3, 0x63, 0xa3, 0x23, 0xc3, 0x43, 0x83 
Oxfd, 0x7d, Oxbd, 0x3d, Oxdd, 0x5d, 0x9d, Oxld, Oxed, Ox6d, Oxad, 0x2d, Oxcd, 0x4d, 0x8d 
0xf5, 0x75, OxbS, 0x35, 0xd5, 0x55, 0x95, 0x15, 0xe5, 0x65, 0xa5, 0x2 5, Oxc5, 0x45, 0x85 
Oxf 9, 0x79, 0xb9, 0x39, 0xd9, 0x59, 0x99, 0x19, 0xe9, 0x69, 0xa9, 0x29, 0xc9, 0x49, 0x89 
Oxf 1, 0x71, Oxbl, 0x31, Oxdl, 0x51 , 0x91 , Oxll , Oxel, 0x61, Oxal, 0x21, Oxcl, 0x41, 0x81 
Oxfe, 0x7e, Oxbe, 0x3e, Oxde, 0x5e, 0x9e, Oxle, Oxee, 0x6e, Oxae, 0x2e, Oxce, 0x4e, 0x8e 
Oxf 6, 0x76, 0xb6, 0x36, 0xd6, 0x56, 0x96, 0x16, 0xe6, 0x66, 0xa6, 0x26, 0xc6, 0x46, 0x86 
Oxfa, 0x7a, Oxba, 0x3a, Oxda, 0x5a, 0x9a, Oxla, Oxea, 0x6a, Oxaa, 0x2a, Oxca, 0x4a, 0x8a 
0xf2, 0x72, 0xb2, 0x32, 0xd2, 0x52, 0x92, 0x12, 0xe2 , 0x62, 0xa2, 0x22, 0xc2, 0x42, 0x82 
Oxf c, 0x7c, Oxbc, 0x3c, Oxdc, 0x5c, 0x9c, Oxlc, Oxec, 0x6c, Oxac, 0x2c, Oxcc, 0x4c, 0x8c 
Oxf 4, 0x74, 0xb4, 0x34, 0xd4, 0x54 , 0x94 , Oxl 4 , 0xe4 , 0x64 , 0xa4 , 0x24 , 0xc4 , 0x4 4 , 0x84 
Oxf 8, 0x78, Oxb8, 0x38, Oxd8, 0x58, 0x98, 0x18, 0xe8, 0x68, 0xa8, 0x28, 0xc8, 0x4 8, 0x88 
Oxf 0, 0x70, OxbO, 0x30, OxdO, 0x50, 0x90, 0x10, OxeO, 0x60, OxaO, 0x20, OxcO, 0x4 0, 0x80 



static void CSSdescramble ' unsigned char *key ) 
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unsigned int tl, t2, t3, t4, CS. C6, 
unsigned int i; 

tl» keyfO] * 0x100; 
t2« keyfl] ; 

t4*t3 4 ( 7 Unsigned lnt * ,(ke y +2 ))) 

t3-t3*2+8-t4; 
t5«0; 



£or( i-o ; 1 < .j ; i+ + 



t5>>»8; 

.1 

prmtf ( "\n" ) ; 



t4-CSStab2[t2]-CSStab3[tll • 
t2*tl>>i ; 

tl»{ (tlfil) «8) A t4; 
t4«CSStab5(t4] ; 

t6»CSStab4 [t6] ; 
t5+«t6+t4 ; 

printf( "%02 X ",t5&0xff); 



/' 



* The Divide and conquer attack 

I Deviced and written by Frank A. Stevenson 



( frank@funcom.com ) 
Released on a GPL license 



/ 

static int RunLfsr2Backwards( mt vStartS*.*. 

unsigned mt tl,t3,t6- vstartState, int nSteps ) ( 

mt 



=3 = vStartState; 

fort i - ; i < n steps ; i++ , , 
CX « t3 C Oxff; 



kfs& rKir? £vr sh bru " £ -« ln 

t3 - (t3 £ Oxlffff) | ( j « 17 j . 



return t3; 



static unsigned char mvtab4 [256] ; 

static void CSScrackert un 

unsigned mt tl, t2, t3, C4, tVHl; pSCream ' Signed char 'pTableA, unsigned c 

unsigned mt nTrv: 
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unsigned int vCandidate; 

int i; 



/* Test that pTableA is a permutation V 
memsett mvtab4, 0, 256 ); 

forj i - / i < 256 ; i++ ) invtab4[ pTableAfi] 1 . i, 

f ° r(l " ,° ' 1 K 256 ; > «< mvtab4[ i J fi i , }' 

prmtf( "Permutation error\n" )• 
exit ( -1 ) ; 



/• initialize the inverse of table4 V 

for( i = ; i < 256 ; i+ + , ln vtab4 [ pTableAfi] ] » i; 

for( nTry - ; nTry < 65536 ; nTry++ ) / 
tl = nTry >> 8 I 0x100; 
t2 » nTry & Oxff; 
t3 = 0; 
t5 ■ 0; 

iTV^ri™*^ reC ° nStrU « LFSR2 16/17 bits 
/* advance LFSR1 normaly */ 
t4«CSStab2 [t2] *CSStab3 [tl] • 
t2-tl»l; 

tl»( (tUl><<8) A t4; 
t4»pTableB[t4] ; 
/* deduce t6 & t5 »/ 
t6 » pStream[ i ] ; 

if( t5 ) t6 = ( t6 * Oxff UOxOff; 

lf( t6 < t4 ) t6 *' 0x100; 

t6 -» t4; 

t5 +■ t6 + t4; 

t6 » invtab4 [ t6 ) ; 

/* printft "%02x/s02x t4, t6 ); */ 
I* feed / advance t3 / t5 */ 
t3 * (t3 << 8) | t6; 
t5 >>» 8; 



/* Guess the most significant bit of LFSR2 V 
vCandidate » RunLfsr2Backwards ( t3 3 ) 
if( ( vCandidate & 0x08 ) «• o ) I ' 

t3 I* 0x01000000; 
^ vCandidate - RunLf sr2Backwards ( t3 3 J; 

if( (vCandidate s 0x08 ) ■• o | ( 

e^t! f -lT* Ued " 9Ue " " exitln 9\n" ); 

I 

fltf'Tt 5 ?IV?1 M C ° VaUdaCe xey •/ 

t4«CSStab2[t2rcsStab3[tl] ; 
t2»tl»l; 

tl"( (tl4l) <<8) A t4; 
t4=pTable3 [t4 ] ; 

t3:!t3<<8nt6; 3 '"'- 3 ' >>1, " :3,>>8, -- 3 ' >>51 " 1 '"-- 

t6=pTableA[ t6] ; 
t5*-t6+t4 ; 

llLLl 5 5 ° Xff) ' = P Sc " am ^ » break; 
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J 

iff i «» 5 ) { 

/• Key was found - print ouC resul 
M - ( vCandidate / 2 , fi Qxfffffs' 
t4 |» vcandidate 6 0x7- 



give random result, if „ onhex di , its , r< #/ 
static cher hexdi,it S ( 17; . »01234567e 9 .bcd.f\0"; 



int r; 



ch » tolowerf pNwnberfO] ); 

r ■ 16 * (int) ( strchr ( hexdiaits ch i k 

ch = tolowerf pNumJberT] , XaigiCs ' ch 1 " hexdigits ); 

r*- <int)< strchr ( hexdigi^, ch , . hexdigits ); 

) -turn r . OxOff, iavUid lnput ^ have ? ^ ^ ^ 

unsigned char A(5J; ln ' un "gned char •out ) { 

unsigned char B[5] ; 

unsigned char C[5] ; 

unsigned char k[6] ; 

/* Recover mangling key */ 
memcpy( A, m, 5 ) ; 
memcpy ( c, out, 5 ) j 

k[5] » 0; 

fort i-0 ; i < 256 ; i , 

k[4] - i; ' f 

f °r( 3 » 4 ; j >- 2 ; j- , { 

BIO] • CSStabll B[l] 1 - kill - r „, 
*t01 - BIO] - CSSfll] AtSj j - bu!; 

ifl I CSStabll B(0] ] - k[0 ] ,« C[0J , , 



) 
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return 0; 



/* Main function */ 

int mam( mt argc, char- arovf] ) ( 

int i; 

unsigned char in[5] * | 0,0,0,0,0 ]• 
unsigned char out [5] » { 0,0,0,0,0 ) ; 

iff argc '« 11 ) { 



printff "Usage: ^s xx xx w w „„ ... 

return -1; XX XX * X «T W yy yy yy ( Disc key / Encrypted Disk k 



for( i » 0; i < 5 ; i+~ ) ( 

in[ i ] » HexByteToInt ( argv[i+i] )• 
} out[ i ] » HexByteToInt ( argv[i +6 ] }, 

/* search for key */ 

printff "Recovering Kev\n" ) ; 

unmanglei in, out ); 

return ( ) ; 
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